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REMARKS 

Applicants and Applicants' attorney express appreciation to the Examiner for the 
courtesies extended during the recent Interview held on August 24, 2004. The claim 
amendments and arguments submitted in this paper are consistent with the amendments and 
arguments presented during the course of the Interview. 

Claims 1-26 are pending, of which claims 1, 19, and 22 are independent method claims 
with independent computer program product claims 12 corresponding to independent method 
claim 1. As indicated above, by this paper claims 1, 12, 19, 22, and 23 have been amended.^ 

The Office Action rejected the independent claims 1, 12, 19, and 22 under 35 U.S.C. § 
102(e) as being anticipated by U.S. Patent No. 6,081,900 to Subramaniam et al. 
{"Subramaniam''). The remaining dependent claims were rejected as either anticipated under 35 
U.S.C. § 102(e) by Subramaniam or as unpatentable under 35 U.S.C. § 103(a) over 
Subramaniam in view "Wireless Application Protocol Wireless Transport Layer Security" by En 
CEn''),^ 

Applicants' invention, as claimed for example in independent method claim 1, relates to a 
communications device of an external client establishing a secure connection over a public 
network to a private corporate network without restricting the communications device to working 
through the private corporate network. The method includes the external client establishing a 
connection with the private corporate network over the public network using the communication 
device such that it is as though the external client is part of the private corporate network and 
therefore can access one or more internal resources of the private corporate network, providing 
security to the connection, maintaining a session that uses the secure connection to communicate 
with the private corporate network, and during at least a portion of the external client 
maintaining a session that uses the secure connection, the communication device retaining the 
ability to establish a separate and distinct connection with another resource outside of the private 
corporate network. Independent claim 12 recites similar Umitations from the perspective of a 
computer program product. 

'Support for the claim amendments can be found throughout the Specification, including at page 4, lines 1-8; 
page 15, line 20 -page 16, line 21; page 18, lines 10-15); and Figure 3. 

^Although the prior art status of all cited art is not being challenged at this time, Applicants reserve the right to 
do so in the future. Accordingly, any arguments and amendments made herein should not be construed as 
acquiescing to any prior art status or asserted teachmgs of the cited art. 
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Applicants' invention, as claimed for example in independent method claim 19, similarly 
relates to a communications device of an external client establishing a secure connection over a 
public network to a private corporate network without restricting the communications device to 
working through the private corporate network. The method includes securely connecting to the 
private corporate network while retaining the ability to establish a separate and distinct 
connection with a resource outside of the private corporate network such that the external client 
becomes part of the private corporate network and therefore can access one or more internal 
resources of the private corporate network which are otherwise inaccessible to external clients, 
and during at least a portion of the securely connecting, accessing the resource outside of the 
private corporate network. 

Applicants' invention, as claimed for example in independent method claim 22, relates to 
a server computer system within a private corporate network establishing a secure connection 
with a communications device of an external client without restricting the communications 
device to working through the private corporate network. The method includes a virtual private 
network access server within the private corporate network facilitating the establishment of a 
connection with the external client over the public network such that it is as though the extemal 
client is part of the private corporate network and therefore can access one or more internal 
resources of the private corporate network which are otherwise inaccessible to extemal clients, 
and the server computer system facilitating the providing of security to the connection, wherein 
the secure connection is established while allowing the extemal client to maintain the ability to 
establish a separate and distinct connection directly with one or more extemal resources rather 
than having to route communication with the one or more extemal resources through the private 
corporate network. 

"A claim is anticipated only if each and every element as set forth in the claim is found, 
either expressly or inherently described, in a single prior art reference." MPEP § 2131. That is, 
"for anticipation under 35 U.S.C. 102, the reference must teach every aspect of the claimed 
invention either explicitly or impliedly." MPEP § 706.02. Applicants also note that "[i]n 
determining that quantum of prior art disclosure which is necessary to declare an applicant's 
invention 'not novel' or 'anticipated' within section 102, the stated test is whether a reference 
contains an 'enabling disclosure.'" MPEP § 2121.01. In other words, a cited reference must be 
enabled with respect to each claim limitation. During examination, the pending claims are given 
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their broadest reasonable interpretation, i.e., they are interpreted as broadly as their terms 
reasonably allow, consistent with the specification. MPEP §§ 21 1 1 & 21 1 1 .01 . 

Subramaniam discloses a border server in order to allow external clients secure access to 
a secure network. Col. 3, 11. 1 1-25; Figure 3. The border server includes a URL transformer to 
modify non-secure uniform resource locators in data being sent from a target server to the client 
by replacing them with corresponding secure URLs to promote continued use of secure 
communication. Col. 3, 11. 35-39. For example, the URL transformer may replace instances of 
"http" which refer to locations inside the secure network by corresponding instances of "https" 
which refer to the same locations. Col. 3, 11. 39-43. 

Among other things, however, Subramaniam fails to teach or suggest an external client 
establishing a connection with the private corporate network over a public network using a 
communication device such that it is as though the external client is part of the private corporate 
network and therefore can access one or more intemal resources of the private corporate 
network, and during at least a portion of the extemal client maintaining a session that uses the 
secure connection, the communication device retaining the ability to establish a separate and 
distinct connection with another resource outside of the private corporate network, as recited in 
independent claims 1 and 12; fails to teach or suggest securely connecting to a private corporate 
network while retaining the ability to establish a separate and distinct connection with a resource 
outside of the private corporate network such that the extemal client becomes part of the private 
corporate network and therefore can access one or more intemal resources of the private 
corporate network which are otherwise inaccessible to extemal clients, and during at least a 
portion of securely connecting, accessing the resource outside of the private corporate network, 
as recited in independent claim 19; and fails to teach or suggest a virtual private network access 
server within a private corporate network facilitating the establishment of a connection with the 
extemal client over a public network such that it is as though the extemal client is part of the 
private corporate network and therefore can access one or more intemal resources of the private 
corporate network which are otherwise inaccessible to extemal clients, and a server computer 
system facilitating the providing of security to the connection, wherein the secure connection is 
established while allowing the extemal client to maintain the ability to establish a separate and 
distinct connection directly with one or more extemal resources rather than having to route 
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communication with the one or more external resources through the private corporate network, 
as recited in independent claim 22. 

Rather, Subramaniam 's border server operates more like a reverse proxy server. See 
Specification, p. 15, 11. 14-19. If a chent using Subramaniam's border server established a 
connection with a secure network such that it is as though the client is part of the secure network 
or such that the client becomes part of the secure network, what need is there for the URL 
transformer? In other words, the purpose for Subramaniam 's border server seems to be 
transforming internal URLs to make them suitable for external clients — ^not to make it as though 
the external clients are part of the secure network. 

The Examiner seemed to concur with this analysis during the Interview and noted in the 
Interview Summary that the amendments and arguments presented with respect to the 
independent claims appear to distinguish over the prior art and that upon filing the formal 
amendment with the proposed amendments and arguments advanced during the interview, the 
Examiner would give further consideration to the proposed response and perform and updated 
search. 

Based on at least the foregoing reasons, therefore. Applicants respectfully submit that the 
cited prior art fails to anticipate or make obvious Applicants invention, as claimed for example, 
in independent claims 1, 12, 19, and 22. Applicants note for the record that the remarks above 
render the remaining rejections of record for the independent and dependent claims moot, and 
thus addressing individual rejections or assertion with respect to the teachings of the cited art is 
unnecessary at the present time, but may be undertaken in the future if necessary or desirable, 
and Applicants reserve the right to do so. 

In the event that the Examiner finds any remaining impediment to a prompt allowance of 
this application that may be clarified through a telephone interview, the Examiner is requested to 
contact the undersigned attomey. 
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Dated this 28'*" day of September 2004. 



Respectfully submitted,-^ y /yf 

RICK D. NYDEGGER 
Registration No. 28,651 
ERIC M. KAMERATH 
Registration No. 46,081 
Attorneys for Applicant 
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